AbuseIPDB » 170.168.29.213
170.168.29.213 was found in our database!
This IP was reported 5 times. Confidence of
Abuse
is 0% : ?
ISP
Fine Group Servers Solutions LLC
Usage Type
Data Center/Web Hosting/Transit
ASN
AS59651
Domain Name
finegroupservers.com
Country
๐ธ๐ช
Sweden
City
Marsta, Stockholm
IP info including ISP, Usage Type, and Location provided
by IPInfo . Updated weekly.
IP Abuse Reports for 170.168.29.213 :
This IP address has been reported a total of
5
times from
3 distinct
sources.
170.168.29.213 was first reported on
January 18th 2026 , and the most recent report was
2 months ago .
Old Reports:
The most recent abuse report for this IP address is from
2 months ago
. It is possible that this IP is no longer involved in abusive activities.
Reporter
IoA Timestamp (UTC)
Comment
Categories
๐บ๐ธ
TPI-Abuse
2026-04-13 09:44:53
(2 months ago)
(mod_security) mod_security (id:225170) triggered by 170.168.29.213 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:225170) triggered by 170.168.29.213 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Apr 13 05:44:46.174130 2026] [security2:error] [pid 3723924:tid 3723924] [client 170.168.29.213:52817] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||voodooshop.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "voodooshop.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ady7Dtg8CWKuKMX0-oucWgAAAAU"], referer: https://www.google.com
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-08 14:40:21
(2 months ago)
(mod_security) mod_security (id:225170) triggered by 170.168.29.213 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:225170) triggered by 170.168.29.213 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 08 10:40:15.646344 2026] [security2:error] [pid 2959979:tid 2959979] [client 170.168.29.213:17559] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||leewis.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "leewis.com"] [uri "/wp-json/wp/v2/users"] [unique_id "adZozwgfytXJ6SRCDdtglgAAAAI"], referer: https://www.google.com
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ท๐บ
cleanweb
2026-04-02 05:05:07
(3 months ago)
Looking for /backup.tar, Agent: Mozilla/5.0 (X11; Linux x86_64) Gecko/20100101 Firefox/124.0
Brute-Force
Phishing
๐บ๐ธ
TPI-Abuse
2026-03-18 13:35:46
(3 months ago)
(mod_security) mod_security (id:225170) triggered by 170.168.29.213 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:225170) triggered by 170.168.29.213 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Mar 18 09:35:38.500660 2026] [security2:error] [pid 9739:tid 9739] [client 170.168.29.213:56901] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||digdesign.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "digdesign.com"] [uri "/wp-json/wp/v2/users"] [unique_id "abqqKlu2cUPl-LINx8grBwAAAA4"], referer: https://www.google.com
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
masterguru
2026-01-18 14:21:16
(5 months ago)
(modsec_5015) ModSec 5015: Suspicious User-Agent from 170.168.29.213 (FR/France/-): 1 in the last 36 ...
show more
(modsec_5015) ModSec 5015: Suspicious User-Agent from 170.168.29.213 (FR/France/-): 1 in the last 3600 secs (0-196)
show less
Hacking
Showing 1 to
5
of 5 reports
Think this IP has been falsely reported? You may request to have the associated
reports reviewed and removed.
Request Takedown ๐ฉ
Recently Reported IPs: